SOC 2 Compliance

Written by Dean Capone | 11/6/25 1:52 PM

We’re excited to share that Pegasus has successfully completed its SOC 2 Type II audit, demonstrating our continued commitment to keeping your data secure and our systems reliable.

What is SOC 2?

SOC 2 is one of the most respected compliance standards for technology companies. Developed by the American Institute of Certified Public Accountants (AICPA), it evaluates how organizations manage customer data in five areas:

Security– Protecting data from unauthorized access or disclosure.
Availability– Ensuring systems and services remain reliable and accessible.
Processing Integrity– Guaranteeing that data is processed accurately, and on time.
Confidentiality– Safeguarding information that is restricted or sensitive.
Privacy– Managing personal data responsibly and in accordance with commitments.

When customers work with a SOC 2-compliant company, they know their data is being managed according to the highest standards of security and reliability.

Type I vs. Type II: Why It Matters

There are two forms of SOC 2 reports, and the difference between them is critical:

SOC 2 Type I– A snapshot. It confirms that a company has designed proper controls at a single point in time.
SOC 2 Type II– A test over time. It proves that those controls were not only in place but consistently operating effectively over several months.

By achieving SOC 2 Type II, Pegasus has demonstrated that our policies, processes, and systems are not just written down—they’re practiced and verified in our daily operations.

What This Means for Our Customers

For construction teams managing complex projects, trust is everything. You rely on Pegasus to manage critical data like contracts, financials, and field reports. SOC 2 Type II compliance gives you:

Confidence in Security – Your sensitive project and financial data is protected by thoroughly tested safeguards.
Reliable Access – Our systems are consistently monitored to ensure uptime and performance.
Proven Accountability – An independent audit confirmed that Pegasus operates with integrity and transparency.

Achieving SOC 2 Type II compliance is a major step forward, but it’s not the end of our journey. We’ll continue to invest in our infrastructure, refine our processes, and uphold the highest standards so that our customers can focus on building with confidence.

View full post

SOC 2 Compliance

What is SOC 2?

Security– Protecting data from unauthorized access or disclosure.

Availability– Ensuring systems and services remain reliable and accessible.

Processing Integrity– Guaranteeing that data is processed accurately, and on time.

Confidentiality– Safeguarding information that is restricted or sensitive.

Privacy– Managing personal data responsibly and in accordance with commitments.

Type I vs. Type II: Why It Matters

SOC 2 Type I– A snapshot. It confirms that a company has designed proper controls at a single point in time.

SOC 2 Type II– A test over time. It proves that those controls were not only in place but consistently operating effectively over several months.

By achieving SOC 2 Type II, Pegasus has demonstrated that our policies, processes, and systems are not just written down—they’re practiced and verified in our daily operations.

What This Means for Our Customers

Confidence in Security – Your sensitive project and financial data is protected by thoroughly tested safeguards.

Reliable Access – Our systems are consistently monitored to ensure uptime and performance.

Proven Accountability – An independent audit confirmed that Pegasus operates with integrity and transparency.